[Raw Msg Headers][Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Router SIGSEGV

To: ZMailer Mailing list <zmailer@nic.funet.fi>
Subject: Router SIGSEGV
From: zmailer <zmailer@lists.com.ar>
Date: Mon, 5 Jul 2004 11:57:50 -0300
Original-Recipient: rfc822;zmailer-log@nic.funet.fi
Sender: zmailer-owner@nic.funet.fi


Hi,

We have found a problem with the router.
You can do a DOS attack by sending a simple 
mail.

Creating a To: field in the header like:
To: "\(AnyText"

the router dies with a SIGSEV whitout removing
the message, so it keeps processing it whit the same
result....

Any text, between double quotes starting with a
backslash parenthesis, but without a mail address
between less and greater than.


I'm testing this on a zmailer-2.99.56 version, 
but 2.99.56-patch1pre2 has the same problem.

We have been looking but didn't find the problem yet.
So, if somebody can help....

TIA.

Example
=======
EHLO x
MAIL FROM:<test@test.com>
RCPT TO:<some@one.com>
DATA
From: test@test.com
To: "\(Troubles"
Subject: DDOS

asdfg

.

-
To unsubscribe from this list: send the line "unsubscribe zmailer" in
the body of a message to majordomo@nic.funet.fi

Follow-Ups:
- Re: Router SIGSEGV
  - From: Matti Aarnio <mea@nic.funet.fi> (Tue, 6 Jul 2004 08:10:49 +0300)

Prev by Date: No Subject
Next by Date: Re: aliases problem
Prev by thread: RE: aliases problem
Next by thread: Re: Router SIGSEGV
Index(es):
- Date
- Thread